Exposição de TinyMCE
Rich text editors24
score de exposição
30.478
sites usam
0
em exploração
0
críticos
CVEs
16 resultadosCVE-2019-1010091—tinymce 4.7.11, 4.7.12 is affected by: CWE-79: Improper Neutralization of Input During Web Page Generation. The impact is: JavaScript code eEPSS 1.9%CVE-2024-21911MEDIUMCross-site scripting vulnerability in TinyMCEEPSS 1.2%CVE-2024-21908MEDIUMCross-site scripting vulnerability in TinyMCEEPSS 1.1%CVE-2024-21910MEDIUMCross-site scripting vulnerability in TinyMCE pluginsEPSS 1.0%CVE-2022-23494MEDIUMCross-site scripting vulnerability in TinyMCE alertsEPSS 0.9%CVE-2024-29203MEDIUMTinyMCE Cross-Site Scripting (XSS) vulnerability in handling iframesEPSS 0.7%CVE-2024-29881MEDIUMTinyMCE Cross-Site Scripting (XSS) vulnerability in handling external SVG files through Object or Embed elementsEPSS 0.7%CVE-2023-48219MEDIUMSpecial characters in unescaped text nodes can trigger mXSS in TinyMCEEPSS 0.7%CVE-2023-45818MEDIUMCross-site Scripting vulnerability in TinyMCE undo/redo, getContent API, resetContent API, and Autosave pluginEPSS 0.6%CVE-2023-45819MEDIUMCross-site Scripting vulnerability in TinyMCE notificationManager.open APIEPSS 0.6%CVE-2024-38356MEDIUMTinyMCE Cross-Site Scripting (XSS) vulnerability using noneditable_regexp optionEPSS 0.5%CVE-2024-38357MEDIUMTinyMCE Cross-Site Scripting (XSS) vulnerability using noscript elementsEPSS 0.5%CVE-2026-47759HIGHTinyMCE Cross-Site Scripting (XSS) vulnerability using through data-mce- prefixed src, href, style attributesEPSS 0.2%CVE-2026-47762HIGHTinyMCE Cross-Site Scripting (XSS) vulnerability through `mce:protected` commentsEPSS 0.2%CVE-2026-47761HIGHTinyMCE Cross-Site Scripting (XSS) vulnerability using media plugin `data-mce-object` injectionEPSS 0.2%CVE-2026-47760HIGHTinyMCE Cross-Site Scripting (XSS) vulnerability using sanitization bypass through nested SVGsEPSS 0.2%
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →